Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: zH7NmOvwR+WBmriEjDXgCRcSakVxQWSX/SucpTrE02w=
Subject key identifier: 6E:9A:37:84:73:C3:C5:00:94:E7:15:9A:31:5A:1F:AB:D6:62:24:A5
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019A4E41735502D317B6C701619AEBFC0437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 15F5
Signing time: Tue 04 Nov 2025 09:45:03 +0000
Manifest this update: Tue 04 Nov 2025 09:45:03 +0000
Manifest next update: Wed 05 Nov 2025 09:45:03 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: HGyMkHEeBMY3cvRAEZp88wSR+bF8Fq9S4cmleSapJz4=)
2: twJfM1b3K1XophieDfrOK9Yb-bY.roa (hash: MXmmwrQwlazvGbzqXnWAVBTx7ErXJeD/39Xn13fKyq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:41:73:55:02:d3:17:b6:c7:01:61:9a:eb:fc:04:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Nov 4 09:45:03 2025 GMT
Not After : Nov 5 09:45:03 2025 GMT
Subject: CN=6e9a378473c3c50094e7159a315a1fabd66224a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:70:cc:1d:12:9d:dd:86:cf:ec:99:8f:f5:85:
29:33:3a:8f:20:d6:0a:ae:78:c2:34:5c:6d:1c:f4:
95:2c:3f:34:7b:ca:dc:df:27:3b:99:7d:be:d8:b0:
78:9a:79:a9:71:b8:27:7c:21:83:49:50:24:23:7f:
32:21:1b:fd:07:98:5f:29:2a:1c:b2:5c:8c:90:f7:
5e:db:8c:55:59:a4:57:ee:cc:3c:df:82:dd:b1:2b:
2e:02:18:74:80:0f:7c:8f:9f:2b:d7:27:df:04:00:
fe:b2:5d:5a:04:41:ce:97:36:fb:90:bb:c6:b7:c6:
6d:ed:63:d6:77:8a:0e:d4:3c:59:f6:28:ea:76:97:
5d:cb:33:92:6a:7d:30:47:e9:05:21:c8:1d:3a:66:
c2:01:df:91:48:ce:1c:ac:5e:8e:96:9a:f0:db:75:
c4:e9:14:ec:c0:b8:b0:73:f7:09:d5:f0:a5:17:64:
1e:cf:19:08:34:aa:ed:e4:95:2a:0a:41:24:17:84:
fc:34:9a:e0:9b:9f:6c:d5:ee:44:ca:59:32:60:05:
1e:dc:cb:5e:ea:3a:b9:8b:be:16:62:07:e6:53:1c:
ce:6e:26:32:e4:64:eb:e3:47:c0:9d:ac:89:a1:e9:
1f:ab:51:be:f9:e5:b7:32:1b:51:bd:4a:60:3d:73:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9A:37:84:73:C3:C5:00:94:E7:15:9A:31:5A:1F:AB:D6:62:24:A5
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:7f:bf:f1:28:e9:98:8d:c4:66:3f:ee:fd:0a:4c:3d:d2:95:
b3:10:83:29:fa:c9:73:7d:36:eb:b6:02:95:5d:42:95:a0:e5:
76:bf:58:2d:7a:60:0a:0d:e3:bf:c7:1d:3d:73:6d:f8:48:03:
64:75:42:e6:b8:06:97:9c:64:8d:bf:25:78:4b:c5:1c:cc:51:
4e:e9:86:44:06:84:e0:5f:de:67:13:28:0e:77:2f:e3:79:27:
d9:1e:ae:7e:db:90:56:ca:ef:ef:94:73:00:9e:0b:37:a4:71:
85:25:35:61:0d:2b:d0:14:14:fa:23:96:b2:d3:a4:ee:3e:66:
8a:da:ea:0b:2f:2e:01:5d:3b:7f:49:5d:be:87:ba:71:5f:48:
33:f9:ee:24:d4:a2:64:27:7e:2a:1f:d3:36:4d:f2:82:98:69:
7f:b6:b4:96:c8:05:d4:df:f7:1f:87:21:d4:b2:0b:c7:11:eb:
2b:67:06:55:fa:57:f9:77:2b:41:1d:61:ca:9c:1c:f3:f7:29:
c4:a6:6b:e8:2a:5f:1f:56:c1:38:fa:55:5c:36:9e:49:50:59:
e1:a5:8f:75:67:06:f4:8b:b0:66:d4:b2:6a:cb:58:9a:12:f6:
35:da:ed:b3:aa:f1:ad:8c:31:bb:36:95:36:05:0a:9d:4f:45:
02:df:24:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:00:02 2025 by rpki-client